Fedora 36 : unbound (2022-164cf7837e)

The remote Fedora 36 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-164cf7837e advisory. - Fix CVE-2022-3204 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for thi...

Fedora 35 : unbound (2022-204ee3da84)

The remote Fedora 35 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-204ee3da84 advisory. - Fix CVE-2022-3204 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for thi...

EulerOS 2.0 SP10 : unbound (EulerOS-SA-2022-2859)

According to the versions of the unbound packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A vulnerability named 'Non-Responsive Delegation Attack' NRDelegation Attack has been discovered in various DNS resolving software. The...

CVE-2022-3987 Responsive Lightbox2 < 1.0.4 - Contributor+ Stored XSS

The Responsive Lightbox2 WordPress plugin before 1.0.4 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks...

CVE-2022-3987 Responsive Lightbox2 < 1.0.4 - Contributor+ Stored XSS

The Responsive Lightbox2 WordPress plugin before 1.0.4 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks...

WordPress plugin Responsive Lightbox2 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerabilit...

PT-2022-25061 · WordPress · Responsive Lightbox2

Name of the Vulnerable Software and Affected Versions: Responsive Lightbox2 WordPress plugin versions prior to 1.0.4 Description: The issue is related to the lack of validation and escaping of some shortcode attributes, which could allow users with a role as low as contributor to perform Stored...

GLSA-202212-02 : Unbound: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202212-02 Unbound: Multiple Vulnerabilities - NLnet Labs Unbound, up to and including version 1.16.1 is vulnerable to a novel type of the ghost domain names attack. The vulnerability works by targeting an Unbound instance. Unbound...

Huawei EulerOS: Security Advisory for unbound (EulerOS-SA-2022-2808)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP8 : unbound (EulerOS-SA-2022-2808)

According to the versions of the unbound packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A vulnerability named 'Non-Responsive Delegation Attack' NRDelegation Attack has been discovered in various DNS resolving software. The...

EulerOS 2.0 SP9 : unbound (EulerOS-SA-2022-2781)

According to the versions of the unbound packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - NLnet Labs Unbound, up to and including version 1.16.1 is vulnerable to a novel type of the 'ghost domain names' attack. The vulnerability work...

EulerOS 2.0 SP9 : unbound (EulerOS-SA-2022-2746)

According to the versions of the unbound packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - NLnet Labs Unbound, up to and including version 1.16.1 is vulnerable to a novel type of the 'ghost domain names' attack. The vulnerability work...

MGASA-2022-0361 Updated unbound packages fix security vulnerability

Non-Responsive Delegation Attack. CVE-2022-3204 Improves performance when under load, by cutting promiscuous queries for nameserver discovery and limiting the number of times a delegation point can look in the cache for missing records...

Updated unbound packages fix security vulnerability

Non-Responsive Delegation Attack. CVE-2022-3204 Improves performance when under load, by cutting promiscuous queries for nameserver discovery and limiting the number of times a delegation point can look in the cache for missing records...

OESA-2022-1972 unbound security update

Security Fixes: A vulnerability named 'Non-Responsive Delegation Attack' NRDelegation Attack has been discovered in various DNS resolving software. The NRDelegation Attack works by having a malicious delegation with a considerable number of non responsive nameservers. The attack starts by queryin...

Unbound DNS Resolver < 1.16.3 DoS Vulnerability

Unbound DNS Resolver is prone to a denial of service DoS vulnerability due to a SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

FreeBSD : unbound -- Non-Responsive Delegation Attack (5a1c2e06-3fb7-11ed-a402-b42e991fc52e)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 5a1c2e06-3fb7-11ed-a402-b42e991fc52e advisory. - A vulnerability named 'Non-Responsive Delegation Attack' NRDelegation Attack has been discovered in...

CVE-2022-3204

A vulnerability named 'Non-Responsive Delegation Attack' NRDelegation Attack has been discovered in various DNS resolving software. The NRDelegation Attack works by having a malicious delegation with a considerable number of non responsive nameservers. The attack starts by querying a resolver for...

DEBIAN-CVE-2022-3204

A vulnerability named 'Non-Responsive Delegation Attack' NRDelegation Attack has been discovered in various DNS resolving software. The NRDelegation Attack works by having a malicious delegation with a considerable number of non responsive nameservers. The attack starts by querying a resolver for...

CVE-2022-3204

A vulnerability named 'Non-Responsive Delegation Attack' NRDelegation Attack has been discovered in various DNS resolving software. The NRDelegation Attack works by having a malicious delegation with a considerable number of non responsive nameservers. The attack starts by querying a resolver for...